I'm just looking for some feedback on the above in the sense has anyone taken SANS GPEN or GWAPT in UK?

just interested to know more about the same, I'm checking with my company for the above bootcamp on either of the course... not sure which one will be approved.... As i have seen the Sans website, for GPEN laptop requirement with VMimage on various windows is expected...Is that much Windows (XP,Visahome, Vista ultimate/prof, windows xp Home , windows server etc... required?

I was under the impression there will be lab available during the bootcamp....

I'm just looking for some feedback on the above in the sense has anyone taken SANS GPEN or GWAPT in UK?

just interested to know more about the same, I'm checking with my company for the above bootcamp on either of the course... not sure which one will be approved.... As i have seen the Sans website, for GPEN laptop requirement with VMimage on various windows is expected...Is that much Windows (XP,Visahome, Vista ultimate/prof, windows xp Home , windows server etc... required?

I was under the impression there will be lab available during the bootcamp....

your views & reply is much appreciated....

CheersVp

Hi Vp,

GIAC is the organization in relation to the GPEN and GWAPT certifications, while SANS is the organization related to their own courses that prepares students for the GIAC certifications.

GPEN is e.g. associated with SANS SEC560 while GWAPT, is SANS SEC542.

The actual certification is the same no matter where you do a proctored exam. (All GIAC examinations are proctored as far as I know.)

There are pretty much 3 ways to do these courses, where the first one is intensive courses usually lasting 5 full working days, while the next is self-study and the last but not least is mentor sessions where you have to study yourself, but where you meet up with a mentor once or twice a week, to discuss the course material, etc.

If you have a very good base within ethical hacking, both GPEN and GWAPT shouldn't be too hard, however without any study they may be a bit hard to pass, or at least get a good score at. (I could pass both without study, but I did study a few topics briefly to get an acceptable score, which made me able to apply as a SANS mentor.)

Depending on how fast you need the certification, and what kind of learning method you prefer, the prices may vary as well. I haven't attended any SANS courses yet, but I do hold the GPEN certification, and is also a SANS mentor too for both of these courses. (I pretty much know most of the topics, even though mentors that might've not done the course, will be given time to learn these as well.)

So if you choose a SANS mentor, it can vary but generally the mentor should know the material very well, and have a good relevant skill set too.

With SANS instructors, you're guaranteed the highest quality you can get, as these are highly trained and has in some cases done a lot of mentor sessions too.

The Mentor program is very interesting, but I am qualified to Mentor 5 GIAC certs and I know if I got me for at least 2 of those 5 I'd be asking for my money back. I'll let you guess which 2. Go for SANS instructor led at a conference, OnDemand or vLive. That's my vote.

I think i didnt clearly write in my topic, as you said I'm interested in either of the training 6+ certification, (just trying to push it thru my company for this training and have put forward both the courses, if they chose either of the one, I'm glad to take it) as i plan to do other by self study at later point of time.

I would say not a strong base as such in Ethical hacking /security testing,(preparing myself to work hard) I have been in IT for quite long time with good dev/testing exp, also Im aware of the basics of Linux/windows, currently I have set up my own lab and learning thru BT, since the Sans Bootcamp training is scheduled around Dec in UK, I think in this period I can grasp good knowledge on security testing by self learning with various distros i have setup in lab.I will confirm later if training is approved in my company.....fingers crossed...

tturner wrote:I know if I got me for at least 2 of those 5 I'd be asking for my money back. I'll let you guess which 2.

Would you even ask if I was the mentor? I'd bring custom labs (for exercises)

xsurf wrote:I'm planning to take PWB v3 course. MaXe do you think after I pass the certified from offensive security, i can pass GPEN exam too with self study.

It fits well within this topic imho I've heard a lot of people was able to pass GPEN after OSCP. Just brush up on the laws (in VARIOUS countries, including USA, UK, Japan, Germany, Canada, and a few more).When you've done that you tackle some terminology, along with windows post exploitation commands, and of course other topics you may feel weak in as well. (Do a practice exam / test first, and look at the areas you got 2 or less stars in. Those areas are skills you need to improve!)

vp75 wrote:I think i didnt clearly write in my topic, as you said I'm interested in either of the training 6+ certification, (just trying to push it thru my company for this training and have put forward both the courses, if they chose either of the one, I'm glad to take it) as i plan to do other by self study at later point of time.

I would say not a strong base as such in Ethical hacking /security testing,(preparing myself to work hard) I have been in IT for quite long time with good dev/testing exp, also Im aware of the basics of Linux/windows, currently I have set up my own lab and learning thru BT, since the Sans Bootcamp training is scheduled around Dec in UK, I think in this period I can grasp good knowledge on security testing by self learning with various distros i have setup in lab.I will confirm later if training is approved in my company.....fingers crossed...

No problem, I'll think you'll do fine if you just study hard, and when things get tough, you try harder as offsec often says The key to becoming a pro hacker with a good skillset (get a good base, then specialize in an area), is dedication, ambition and creativity / intuition.

tturner wrote:The Mentor program is very interesting, but I am qualified to Mentor 5 GIAC certs and I know if I got me for at least 2 of those 5 I'd be asking for my money back. I'll let you guess which 2. Go for SANS instructor led at a conference, OnDemand or vLive. That's my vote.

turner... i know GCIA has to be one of them.. the other i am guessing GAWN

I'm redy for hard work, just got TCPIP Illustrated which should also give a strong foundation in network area if needed rather just reading RFC's ...

I have forwaded my request to my employer.... fingers crossed....though the training (bootcamp) is around dec2011, i hope i would get a chance of approval even if rejected first time

CheersVp

No problem, and good luck! Study hard, and pwn that exam Just remember it's open book (not "open Internet"), so take notes or index the course material very well, when / if you decide to go for the certification. Also, do 1 or 2 of the practice exams first, so you can get to know your weak and strong points and also follow up on what you may need to know more about, if any topic at all